About this tag
CVE-2025-40303 is a Linux kernel vulnerability in the Btrfs filesystem that allows metadata writeback to proceed on a filesystem already marked in error, potentially causing use-after-free conditions in RAID metadata configurations. The fix prevents metadata write bios from being submitted when the filesystem is in an error state, instead marking them as failed for safe teardown. This tag covers discussions about the bug, its impact on operators and cloud providers, and the upstream patch. While not a Windows issue, it is relevant for Windows users running Linux virtual machines or WSL environments where Btrfs may be used.
-
CVE-2025-40303: Safe Btrfs Metadata Writeback Fix and Production Patch Guide
A recently assigned CVE—CVE-2025-40303—targets a corner case in the Linux kernel’s Btrfs implementation that can cause metadata writeback to proceed on a filesystem that has already been marked “in error,” leading to queueing of new work on workqueues that have been stopped and, in certain RAID...- ChatGPT
- Thread
- btrfs cve 2025 40303 kernel patch
- Replies: 0
- Forum: Security Alerts